Action1

Action1

Action1 offers cloud-based patch management, vulnerability discovery, and automated remediation to prevent security breaches and ransomware attacks. Their solutions support endpoint security, IT productivity, and remote monitoring for IT departments, S...

Internet Software & Services
11-50

Description

  • Support PSIRT and vulnerability handling activities.
  • Validate, triage, track, and coordinate security reports.
  • Provide practical remediation guidance to engineering teams.
  • Help validate security fixes and reduce product security risks.
  • Review code, APIs, and architecture to identify security issues early.
  • Conduct threat modeling and security design reviews.
  • Improve security automation in engineering workflows.
  • Support SAST, SCA, secrets scanning, and other security controls.
  • Maintain SBOMs, dependency visibility, and remediation follow-up.
  • Support security assessments, vulnerability assessments, and penetration testing.
  • Maintain vulnerability handling playbooks, product security procedures, and incident response runbooks.

Requirements

  • 3+ years of experience in product security, application security, DevSecOps, or a related cybersecurity field.
  • Strong software engineering background and ability to work effectively with engineering teams.
  • Understanding of application, API, infrastructure, and software supply chain security risks.
  • Experience applying cloud security concepts and practices.
  • Understanding of IAM, network security, logging, monitoring, and secure cloud architecture patterns.
  • Familiarity with vulnerability management, incident response, security assessments, and secure SDLC practices.
  • Experience with threat modeling and security design reviews.
  • Strong communication skills, including professional communication with external researchers and vendors.
  • Ability to work independently and as part of a team in a fast-moving environment.
  • Hands-on experience with AWS security controls, best practices, and architecture patterns.
  • Hands-on experience with C++ or JavaScript.
  • Experience with security testing and automation using scripting, APIs, CI/CD pipelines, or specialized tools.
  • Experience with threat modeling for SaaS, API, cloud, or on-prem product components.
  • Experience with SBOM generation, dependency visibility, or software supply chain security.
  • Genuine interest in cybersecurity and motivation to grow as a product security expert.

Benefits

  • Fully remote work environment.
  • Opportunity to work on a real security product used by IT and security teams.
  • High ownership and direct impact on product security practices.
  • Close collaboration with engineering, product, and security teams.
  • Fast-growing software company with low bureaucracy and practical decision-making.
  • Opportunity to improve security processes, automation, and engineering workflows.
  • Supportive team that values clear thinking, ownership, and continuous learning.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Senior Manager, Engineering

Sumo Logic 251-1K Internet Software & Services

Sumo Logic is hiring a Senior Manager, Engineering for Application Security to lead global programs that improve product security, reliability, and operational efficiency across its cloud platform.

Agile AWS C++ Docker GCP Java Kafka Kubernetes OWASP Ruby Scala SIEM
2 days, 6 hours ago

Security Engineering - Apps and Cloud Security

CallTek 51-250 Internet Software & Services

A security engineer at the company will own cloud and application security initiatives across CSPM, CIEM, CWPP, and AppSec platforms, with a focus on securing multi-cloud environments and enabling DevSecOps.

AWS DevSecOps GCP
2 days, 6 hours ago

Senior Configuration Engineer, Product AppSec

Veeam Software 1K-5K Internet Software & Services

Veeam is hiring a Senior Configuration Engineer to lead enterprise release management and delivery automation across cloud-native, SaaS, and AI product environments.

Ansible Azure Bash CI/CD DevSecOps Docker GitOps Jenkins Kubernetes PowerShell Python Secrets Management Terraform
1 week, 1 day ago

Senior Cyber-Security Operations Analyst, Product AppSec

Veeam Software 1K-5K Internet Software & Services

Veeam is hiring a Senior Cyber Security Operations Analyst to help design and scale secure Azure-based development and QA environments while improving CI/CD delivery and integrating security across the software lifecycle.

Ansible AWS Azure Bash CI/CD DevSecOps Docker GCP Git GitHub Actions Jenkins Kubernetes PowerShell Python Secrets Management Terraform
1 week, 1 day ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers